Search CVE reports
21 – 21 of 21 results
Some fixes available 3 of 16
When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11.0.0-M1 to 11.0.0.-M2, 10.1.0-M1 to 10.1.5,...
3 affected packages
tomcat10, tomcat8, tomcat9
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| tomcat10 | Needs evaluation | Not in release | Not in release | Not in release |
| tomcat8 | — | Not in release | Not in release | Needs evaluation |
| tomcat9 | Needs evaluation | Fixed | Fixed | Fixed |